Covergence Session Manager Security and Control Features |
 |
CSM Security and Control Features
The Covergence Session Manager (CSM) security and control capability is unparalleled in the industry. With the CSM, your user connections are secure against loss of information integrity or confidentiality and your service is protected from service theft, intrusions and attacks and unauthorized access – even over untrusted networks.
With the CSM organizations can secure and control VoIP and other real-time applications from a single point in the service infrastructure.
| SBC Feature |
Description |
| Signaling encryption (TLS) |
Encrypts SIP signaling message headers and bodies using Transport Level Security (TLS). Ensures the authenticity, confidentiality and integrity of SIP signaling streams. Prevents attacks that exploit the visibility and/or mutability of signaling information (e.g. call hijacking attacks). |
| Media encryption (SRTP) |
Encrypts media sessions (audio, video, file transfer, etc) using the Secure Real-time Transport Protocol (SRTP). Ensures the authenticity, confidentiality and integrity of real-time media information. Prevents attacks that exploit the visibility and/or mutability of media streams (eavesdropping, media injection attacks, etc). |
| Signaling and media anchoring |
Defeats attacks that exploit the independence of SIP signaling and media streams, enables media security |
| Session detail recording |
Enables organizations to track the usage of SIP-based services and applications for accounting, billing, engineering, capacity planning, forensic analysis and regulatory compliance. |
| Malicious URL and content filtering |
Prevents attacks and intrusions through IM transfers |
| Virus Scanning |
Scans SIP based file transfers using integrated anti-virus technology from industry-leading AV vendors. Prevents the propagation of viruses via SIP based applications. |
| Signaling Control |
Enables organizations to exercise fine-grained control over SIP signaling activity. For example, an administrator could define a policy enabling instant messaging but disabling VOIP. |
| Media Control |
Enables organizations to exercise fine-grained control over SIP-associated media sessions. For example, an administrator could define a policy saying that only people in a particular group or department (as defined in the directory) can do video. |
| Quality of Service (QOS) Control |
Enables organizations to control the QOS of SIP based applications by providing QOS-aware internal priority queuing of ingress traffic and QOS marking of egress traffic. |
| File Transfer Control |
Enables organizations to exercise fine-grained, policy based control over SIP based file transfers. |
| Session Routing Control |
Enables organizations to implement intelligent session routing policies such as application-aware load balancing and inbound call routing (e.g. parallel fork, sequential search, presence based routing, “find me, follow me”, etc). |
| Instant Message Content Control |
Enables organizations to enforce acceptable use policies on the content of instant messages. Scans IM content for string patterns matching regular expressions and takes a policy-defined action when it finds a match. |
| URL Control |
Enables organizations to control the propagation of Uniform Resource Locators (URLs) embedded in SIP based instant messages. Enables enforcement of acceptable use policies, reduces legal liabilities and prevents the propagation of blended threats via SIP applications. |
| aSBC feature overview
Management features
More Info
| |
|
|
